Added permission links after block

Author: palakagrawaljk

api-reference/v1.0/api/security-auditcoreroot-list-auditlogqueries.md

@@ -16,21 +16,11 @@ Get a list of [auditLogQuery](../resources/security-auditlogquery.md) objects an
 [!INCLUDE [national-cloud-support](../../includes/global-only.md)]
 
 ## Permissions
-Auditing data can be accessed through Microsoft Purview Audit Search API via the following permissions, which are classified at a Microsoft 365 service level. To learn more, including how to choose permissions, see [Permissions](../includes/permissions/security-auditcoreroot-list-auditlogqueries-permissions.md).
+Auditing data can be accessed through Microsoft Purview Audit Search API via the following permissions, which are classified at a Microsoft 365 service level. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+<!-- { "blockType": "permissions", "name": "security_auditcoreroot_list_auditlogqueries" } -->
+[!INCLUDE [permissions-table](../includes/permissions/security-auditcoreroot-list-auditlogqueries-permissions.md)]
 
-<!-- {
-  "blockType": "ignored"
-}
--->
-|Microsoft 365 service|Delegated (work or school account)|Delegated (personal Microsoft account)|Application|
-|:---|:---|:---|:---|
-|Microsoft OneDrive|AuditLogsQuery-OneDrive.Read.All|Not supported|AuditLogsQuery-OneDrive.Read.All|
-|Microsoft Exchange|AuditLogsQuery-Exchange.Read.All|Not supported|AuditLogsQuery-Exchange.Read.All|
-|Microsoft SharePoint|AuditLogsQuery-SharePoint.Read.All|Not supported|AuditLogsQuery-SharePoint.Read.All|
-|Data Loss Protection for Endpoint|AuditLogsQuery-Endpoint.Read.All|Not supported|AuditLogsQuery-Endpoint.Read.All|
-|Microsoft Dynamics CRM|AuditLogsQuery-CRM.Read.All|Not supported|AuditLogsQuery-CRM.Read.All|
-|Microsoft Entra|AuditLogsQuery-Entra.Read.All|Not supported|AuditLogsQuery-Entra.Read.All|
-|All Audit Logs|AuditLogsQuery.Read.All|Not supported|AuditLogsQuery.Read.All|
 
 ## HTTP request
 

api-reference/v1.0/api/security-auditcoreroot-post-auditlogqueries.md

@@ -16,23 +16,10 @@ Create a new [auditLogQuery](../resources/security-auditlogquery.md) object.
 [!INCLUDE [national-cloud-support](../../includes/global-only.md)]
 
 ## Permissions
-Auditing data can be accessed through Microsoft Purview Audit Search API via the following permissions, which are classified at a Microsoft 365 service level. To learn more, including how to choose permissions, see [Permissions](../includes/permissions/security-auditcoreroot-post-auditlogqueries-permissions.md).
-
-<!-- {
-  "blockType": "ignored"
-}
--->
-
-|Microsoft 365 service|Delegated (work or school account)|Delegated (personal Microsoft account)|Application|
-|:---|:---|:---|:---|
-|Microsoft OneDrive|AuditLogsQuery-OneDrive.Read.All|Not supported|AuditLogsQuery-OneDrive.Read.All|
-|Microsoft Exchange|AuditLogsQuery-Exchange.Read.All|Not supported|AuditLogsQuery-Exchange.Read.All|
-|Microsoft SharePoint|AuditLogsQuery-SharePoint.Read.All|Not supported|AuditLogsQuery-SharePoint.Read.All|
-|Data Loss Protection for Endpoint|AuditLogsQuery-Endpoint.Read.All|Not supported|AuditLogsQuery-Endpoint.Read.All|
-|Microsoft Dynamics CRM|AuditLogsQuery-CRM.Read.All|Not supported|AuditLogsQuery-CRM.Read.All|
-|Microsoft Entra|AuditLogsQuery-Entra.Read.All|Not supported|AuditLogsQuery-Entra.Read.All|
-|All Audit Logs|AuditLogsQuery.Read.All|Not supported|AuditLogsQuery.Read.All|
+Auditing data can be accessed through Microsoft Purview Audit Search API via the following permissions, which are classified at a Microsoft 365 service level. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
 
+<!-- { "blockType": "permissions", "name": "security_auditcoreroot_post_auditlogqueries" } -->
+[!INCLUDE [permissions-table](../includes/permissions/security-auditcoreroot-post-auditlogqueries-permissions.md)]
 
 ## HTTP request
 

api-reference/v1.0/api/security-auditlogquery-get.md

@@ -16,21 +16,10 @@ Read the properties and relationships of an [auditLogQuery](../resources/securit
 [!INCLUDE [national-cloud-support](../../includes/global-only.md)]
 
 ## Permissions
-Auditing data can be accessed through Microsoft Purview Audit Search API via the following permissions, which are classified at a Microsoft 365 service level. To learn more, including how to choose permissions, see [Permissions](../includes/permissions/security-auditlogquery-get-permissions.md).
-<!-- {
-  "blockType": "ignored"
-}
--->
+Auditing data can be accessed through Microsoft Purview Audit Search API via the following permissions, which are classified at a Microsoft 365 service level. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
 
-|Microsoft 365 Service|Delegated (work or school account)|Delegated (personal Microsoft account)|Application|
-|:---|:---|:---|:---|
-|Microsoft OneDrive|AuditLogsQuery-OneDrive.Read.All|Not supported|AuditLogsQuery-OneDrive.Read.All|
-|Microsoft Exchange|AuditLogsQuery-Exchange.Read.All|Not supported|AuditLogsQuery-Exchange.Read.All|
-|Microsoft SharePoint|AuditLogsQuery-SharePoint.Read.All|Not supported|AuditLogsQuery-SharePoint.Read.All|
-|Data Loss Protection for Endpoint|AuditLogsQuery-Endpoint.Read.All|Not supported|AuditLogsQuery-Endpoint.Read.All|
-|Microsoft Dynamics CRM|AuditLogsQuery-CRM.Read.All|Not supported|AuditLogsQuery-CRM.Read.All|
-|Microsoft Entra|AuditLogsQuery-Entra.Read.All|Not supported|AuditLogsQuery-Entra.Read.All|
-|All Audit Logs|AuditLogsQuery.Read.All|Not supported|AuditLogsQuery.Read.All|
+<!-- { "blockType": "permissions", "name": "security_auditlogquery_get" } -->
+[!INCLUDE [permissions-table](../includes/permissions/security-auditlogquery-get-permissions.md)]
 
 ## HTTP request
 

api-reference/v1.0/api/security-auditlogquery-list-records.md

@@ -19,12 +19,10 @@ Get a list of the [auditLogRecord](../resources/security-auditlogrecord.md) obje
 
 ## Permissions
 
-Auditing data can be accessed through Microsoft Purview Audit Search API via the following permissions, which are classified at a Microsoft 365 service level. To learn more, including how to choose permissions, see [Permissions](../includes/permissions/security-auditlogquery-list-records-permissions.md).
+Auditing data can be accessed through Microsoft Purview Audit Search API via the following permissions, which are classified at a Microsoft 365 service level. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
 
-<!-- {
-  "blockType": "ignored"
-}
--->
+<!-- { "blockType": "permissions", "name": "security_auditlogquery_list_records" } -->
+[!INCLUDE [permissions-table](../includes/permissions/security-auditlogquery-list-records-permissions.md)]
 
 ## HTTP request
 

api-reference/v1.0/includes/permissions/security-auditcoreroot-post-auditlogqueries-permissions.md

@@ -0,0 +1,11 @@
+---
+description: "Automatically generated file. DO NOT MODIFY"
+ms.topic: include
+ms.localizationpriority: medium
+---
+
+|Permission type|Least privileged permissions|Higher privileged permissions|
+|:---|:---|:---|
+|Delegated (work or school account)|ThreatIntelligence.Read.All|Not available.|
+|Delegated (personal Microsoft account)|Not supported.|Not supported.|
+|Application|ThreatIntelligence.Read.All|Not available.|